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TN THE CLAIMS 

1. (Currently Amended) A person authentication system for executing person 
authentication by comparing a template with sampling information, the template being person 
authentication data, and the sampling information being input by a user, the person authentication 
system comprising: 

a person authentication authority for issuing an electronic person authentication certificate 

including the template; and 

a person authentication execution entity for obtaining the certificate including the 
template from the electronic person authentication certificate issued by saidperson authentication 
authority and executing person authentication on the basis of the obtained template; 

wherein the electronic person authentication certificate issued by said person 
authentication authority stores usage restriction information which includes at least either a 
certificate expiration date or a certificate usage number limits-end, 

wherein said-person authentication execution entity checks the validity of the electronic 
person authentication certificate on the basis of the certificate expiration date or the certificate 
usage number limit when the person authentication is executed on the basis of the electronic 
person authentication certificat e, and 

wherein said person authentication authority receives a request for upd ating the issued 
electronic person authentication certificate from an entity that received the e lectronic person 
authentication certificate, makes a second electronic person authentication certificate in which an 
updated certificate expiration date or an updated certificate usage number limit is set according to 
the request and then issues the second electronic person authentication certificate . 

2. (Currently Amended) A person authentication system according to Claim 1, wherein 
said person authentication execution entity checks the validity of the electronic person 
authentication certificate on the basis of the certificate expiration date or the certificate usage 
number limit in person authentication on the basis of the electronic person authentication 
certificate, and then executes the person authentication by comparing the template, stored in the 
electronic person authentication certificate, with sampling information input by the user on the 
condition that the validity of the electronic person authentication certificate has been confirmed 
on the basis of the certificate expiration date or the certificate usage number limit. 
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3. (Currently Amended) A person authentication system according to Claim 1, wherein 
said person authentication execution entity has a person authentication executing device, and the 
person authentication executing device executes the following processing when usage restriction 
information of the certificate usage number limit is stored in the electronic person authentication 
certificate: 

storing a set usage count in a memory of the person authentication executing device; 

updating usage count data stored in the memory every time the electrode person 
authentication certificate is used; 

determining whether the usage count data is within the limits of the set usage count of the 
electronic person authentication certificate; and 

executing person authentication by comparing user input sampling information with the 
template stored in the electronic person authentication certificate if the usage count data is within 
the certificate usage number limit. 

4. (Currently Amended) A person authentication system according to Claim 1 , wherein 
the electronic person authentication certificate issued by said person authentication authority 
stores a template expiration date which is information on an expiration date of the template stored 
in the electronic person authentication certificate; and 

said person authentication execution entity checks the validity of the template on the basis 
of the template expiration date in person authentication on the basis of the electronic person 
authentication certificate. 

5. (Currently Amended) A person authentication system according to Claim 1, wherein 
said person authentication execution entity checks the validity of the template on the basis of a 
&e template expiration date in person authentication on the basis of the electronic person 
authentication certificate, and then executes the person authentication by comparing the template, 
stored in the electronic person authentication certificate, with sampling information input by the 
user on the condition that the validity of the template expiration date has been confirmed. 

6. (Currently Amended) A person authentication system according to Claim 1 , wherein 
said person authentication execution entity functions as an information processing apparatus, and 
the information processing apparatus checks the validity of a template expiration date or the 
certificate expiration date of a an electronic person authentication certificate which is set in the 
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certificate stored in the information processing apparatus and then outputs a request for issuing 
the electronic person authentication certificate to said person authentication authority which 
issues the electronic person authentication certificate when the validity can not be confirmed; 

said person authentication authority makes the electronic person authentication certificate 
in which a now an expiration date is set and then issues the electronic person authentication 
certificate to the information processing apparatus; and 

the information processing apparatus has storage means and stores the electronic person 
authentication certificate, which is issued by said person identification certificate authority, in the 
storage means. 

7. (Currently Amended) A person authentication system according to Claim 1 , wherein 
said person authentication authority checks the validity of a template expiration date or an &e 
expiration date of an issued electronic person authentication certificate, and then gives notice to 
an entity receiving the electronic person authentication certificate that the template expiration 
date or the certificate expiration date is approaching. 

8. (Canceled). 

9. (Currently Amended) A person authentication system according to Claim 1 , wherein 
said person authentication authority receives a request for updating the template, stored in the 
electronic person authentication certificate which has been issued, from an authenticated user of 
the electronic person authentication certificate; and 

wherein said person authentication authority nullifies the electronic person authentication 
certificate according to the request and then makes e the second electronic person authentication 
certificate on the basis of an updated template. 

1 0. (Currently Amended) A person authentication system according to Claim I , wherein 
said person authentication authority receives data of a request for setting a template expiration 
date from an authenticated user of the electronic person authentication certificate, and then makes 
a the second electronic person authentication certificate in which the template expiration date is 
set on the basis of the data of the request for setting the template expiration date. 
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11. (Previously presented) A person authentication system according to Claim 1, 
wherein said person authentication authority and said person authentication executing entity 
execute mutual authentication, when data communication is performed therebetween, a data 
transmitter puts a digital signature on transmitted data, and a data receiver verifies the digital 
signature. 

12. (Previously presented) A person authentication system according to Claim 1, 
wherein the template is at least one of personal biotic information, personal nonbiotic 
information, and a password, 

wherein the personal biotic information is selected from at least one of the group 
consisting of fingerprint information, retina pattern information, iris pattern information, voice 
print information, and handwriting information, and 

wherein the personal nonbiotic information is selected from at least one of the group 
consisting of seal information, passport information, drivers license information, and card 
information. 

13. (Currently Amended) A person authentication system according to Claim 1 , wherein 
said person authentication authority puts a digital signature on a the electronic person 
authentication certificate issued by said person authentication authority, 

14. (Currently Amended) A person authentication method for executing person 
authentication by comparing a template with sampling information, the template being person 
authentication data, and the sampling information being input by a user, the person authentication 
method comprising: 

causing a person authentication authority to issue an electronic person authentication 
certificate including the template; 

causing a person authentication execution entity to obtain the certificate including the 
template from the electronic person authentication certificate issued by the person authentication 
authority and to execute person authentication on the basis of the obtained template; 

storing usage restriction information, which includes at least either a certificate expiration 
date or a certificate usage number limit, in the electronic person authentication certificate issued 
by the person authentication authority; and 
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causing the person authentication execution entity to check the validity of the electronic 
person authentication certificate on the basis of the certificate expiration date or the certificate 
usage number limit in person authentication on the basis of the electronic person authentication 
certificate* 

wherein the person authentication authority receives a request for updating the issued 
electronic person authentication certificate from an entity re ceiving the electronic person 
authentication certificate, then makes a second electronic person auth entication certificate in 
which an expiration date or an undated certifica te usa ge number limit is set according to the 
request, and issues the second electronic person authent ication certificate. 

15. (Currently Amended) A person authentication method according to Claim 14, 
wherein the person authentication execution entity checks the validity of the electronic person 
authentication certificate on the basis of the certificate expiration date or the certificate usage 
number limit in person authentication on the basis of the electronic person authentication 
certificate, and then executes the person authentication by comparing the template, stored in the 
electronic person authentication certificate, with sampling information input by the user on the 
condition that the validity of the electronic person authentication certificate has been confirmed 
on the basis of the certificate expiration date or the certificate usage number limit. 

16. (Currently Amended) A person authentication method according to Claim 14, 
wherein the person authentication execution entity has a person authentication executing device, 
and the person authentication executing device executes the following processing when usage 
restriction information of the certificate usage number limit is stored in the electronic person 
authentication certificate: 

storing a set usage count in a memory of the person authentication executing device; 

updating usage count data stored in the memory every time the electronic person 
authentication certificate is used; 

determining whether the usage count data is within the limits of the set usage count of the 
electronic person authentication certificate; and 

executing person authentication by comparing sampling information, input by a user, with 
the template stored in the electronic person authentication certificate if the usage count data is 
within the limits, 
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17. (Currently Amended) A person authentication method according to Claim 14, 
wherein the person authentication authority stores a template expiration date, which is 
information on an expiration date of the template stored in the electronic person identification 
certificate made by the person authentication authority; and 

aperson authentication execution entity checks the validity of the template onthebasis of 
the template expiration date in person authentication on the basis of the el ectronic peK on 
authentication certificate. 

18- (Currently Amended) A person authentication method according to Claim H, 
wherein theperson authentication execution entity checks the validity of the template on the basis 
of a template expiration date in person authentication on the basis of the el ectronic person 
authentication certificate, and then executes the person authentication by comparing the template, 
stored in the electronic person authentication certificate, with sampling information input by the 
user on the condition that the validity of the template expiration date has been confirmed. 

19. (Currently Amended) A person authentication method according to Claim 14, 
wherein said person authentication execution entity functions as an information processing 
apparatus; 

the information processing apparatus checks the validity of a template expiration date or 
fee a certificate expiration date of a the electronic person authentication certificate which is set in 
the electronic person authentication certificate stored in the information processing apparatus, 
and then outputs a request for issuing the electronic person authentication certificate to the person 
authentication authority which issues the electronic person authentication certificate when the 
validity can not be confirmed; 

the person authentication authority makes the electronic person authentication certificate 
in which a new certificate expiration date is set and then issues the electronic person 
authentication certificate to the information processing apparatus; and 

the information processing apparatus has storage means and stores the electronic person 
authentication certificate, which is issued by the person authentication authority, in the storage 



means. 



20. (Currently Amended) A person authentication method according to Claim 14, 
wherein the person authentication authority checks the validity of a template expiration date or 
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tbe an expiration date of the issued electronic person authentication certificate, and then gives 
notice to an entity receiving the electronic person authentication certificate that the template 
expiration date or the certificate expiration date is approaching. 

21. (Canceled). 

22. (Currently Amended) A person authentication method according to Claim 14, 
wherein the person authentication authority receives a request for updating the template, stored in 
the electronic peison identification certificate which issued, from an authenticated user of the 
electronic person authentication certificate; and 

wherein the person authentication authority nullifies the electtomc person authentication 
certificate according to the request and then makes a the second electronic person authentication 
certificate on the basis of the updated template. 

23. (Currently Amended) A person authentication method according to Claim 14, 
wherein the person authentication authority receives data of a request for setting the a template 
expiration date from an authenticated user of the electronic person authentication certificate, and 
then makes a the second electronic person authentication certificate in which the template 
expiration date is set on the basis of the data of the request for setting the template expiration 
date. 

24. (Previously presented) A person authentication method according to Claim 14, 
wherein the person authentication authority and the person authentication executing entity 
execute mutual authentication, when data communication is performed therebetween, a data 
transmitter puts a digital signature on transmitted data, and a data receiver verifies the digital 
signature. 

25. (Currently Amended) An information processing apparatus for executing person 
authentication by comparing a template with sampling information, the template being person 
authentication data, and the sampling information being input by a user, the information 
processing apparatus comprising: 

a section for storing the template in an electronic person authentication certificate to 
execute person authentication on the basis of the electronic person authentication certificate 
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issuedby aperson authentication certificate authority which is a thiidparty, the etecfeOTie person 
authentication certificate storing at least one of a certificate expiration date and a certificate usage 
number limit; and 

a section for checking the validity of the ^ttonic person authentication certificate on the 
basis of the certificate expiration date or the certificate usage number limit in person 
authentication on the basis of the electronic person authentication certificate, and then executing 
the person authentication by comparing the template, stored in the electronic person 
authentication certificate, with the sampling information input by the user on the condition that 
the validity of the electronic person authentication certificate has been confirmed on the basis of 
the certificate expiration date or the certificate usage number limit* 

wherein the person authentication authori ty receives a request for updating the issue4 
electronic nersori authentication certificate from an e ntity that received the electronic person 
authentication certificate, makes a second electr onic person authentication certificate in which an 
u pdated certificate expiration date or an updated certificate usage number limit is set according to 
the request, and then issues the second electronic person authentication certificate. 

26. (Currently Amended) An information processing apparatus for executing person 
authentication by comparing a template with sampling information, the template being person 
authentication data, and the sampling information being input by a user, the information 
processing apparatus comprising: 

a section for storing the template in an electronic person authentication certificate to 
execute person authentication on the basis of the electronic person authentication certificate 
issued by a person authentication certificate authority which is a third party, the electronic person 
authentication certificate storing at least one of a certificate expiration date and a certificate usage 
number limit; 

a section for executing the following processing when usage restriction information of a 
valid certificate usage number limit is stored in the electronic person authentication certificate: 
storing a set usage count in a memory of the information processing apparatus; updating 
the usage count stored in the memory every time the electronic person authentication certificate is 
used; determining whether the usage count is within the limits of the certificate usage number 
limit of the electronic person authentication certificate; and 
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executing person authentication by comparing user input sampling information with the 
template stored in the electronic person authentication certificate if the usage count in memory is 
within the limits of the certificate usage number limits 

wherein the person authentication authority receives a request for updating the issued 
electronic person authentication certificate from an entity tha{ received the electronic person 
authentication certificate, makes a second electronic person authentication certificate in which an 
updated certificate expiration date or an upd ated certificate usage number limit is set according to 
the reque st, and then issues the second electronic person authentication certificate . 

27. (Currently Amended) An information processing apparatus for executing person 
authentication by comparing a template with sampling information, the template being person 
authentication data, and the sampling information being input by a user, the information 
processing apparatus comprising: 

a section for storing the template in an electronic person authentication certificate to 
execute person authentication on the basis of the electronic p erson authentication certificate 
issued by a person authentication certificate authority which is a third party, the electronic person 
authentication certificate storing at least one of a certificate expiration date and a certificate usage 
number limit; and 

a section for checking the validity of the template on the basis of a template expiration 
date in person authentication on the basis of the electronic person authentication certificate, and 
then executing the person authentication by comparing the template, which is stored in the 
electronic person authentication certificate, with the sampling information input by the user on a 
condition that validity of the template expiration date has been confirmedi 

wherein the person authentication authority re ceives a request for updating the issued 
electronic person auth entication certificate from an entity that received the electronic person 
authentication certificate, makes a second electronic person authentication certificate in which ag 
updated certificate expiration date or an updated certificate usage number limit is set according to 
the request, and then issues the second electronic person authentication certificate . 

28. (Currently Amended) A program providing medium for proving a computer program 
which executes person authentication on the computer program by comparing a template stored 
in a an electronic person authentication certificate with sampling information, the template being 
person authentication data, and the sampling information being input by a user, 
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the computer program comprising: 

a step of confirming whether usage restriction information, which includes either a 
certificate expiration date, a certificate usage number limit, or a template expiration date, is 
stored in the electronic person authentication certificate issued by a person authentication 
authority; 

a step of checking the validity of the electronic person authentication certificate on the 
basis of the certificate expiration date, the certificate usage number limit, or the template 
expiration date in person authentication on the basis of the electronic person authentication 
certificate; and 

a step of executing the person authentication by comparing the template, which is stored 
in the electronic person authentication certificate, with the sampling information input by the user 
on a condition that the validity of the electronic person authentication certificate has been 
confirmed on the basis of the certificate expiration date, certificate usage number limit, or the 
template expiration date* 

wherein the person authe ntication authority receives a request for updating the issued 
electronic person authentication certi ficate from an entity that received the electronic person 
authentication certificate, makes a seco n d electronic person authentication certificate in which an 
updated certificate expiration date or an updated certificate usage number limit is set accordin g to 
the request and then issues the secon d electronic person authentication certificate 
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